Google has launched the December 2025 Android security bulletin, addressing 107 vulnerabilities, together with two flaws actively exploited in focused assaults.
The 2 high-severity vulnerabilities are tracked as CVE-2025-48633 and CVE-2025-48572. They’re data disclosure and elevation-of-privilege points, respectively, affecting Android variations 13 by way of 16.
“There are indications that the next could also be below restricted, focused exploitation,” mentions the December Android bulletin.
Whereas Google has not shared any technical or exploitation particulars concerning the flaws, related flaws prior to now had been used for focused exploitation by industrial spy ware or nation-state operations focusing on a small variety of high-interest people.
Ranked by severity, probably the most essential vulnerability fastened this month is CVE-2025-48631, a denial-of-service (DoS) flaw within the Android Framework.
This month’s updates deal with a complete of 51 flaws on Android Framework and System parts, lined by the 2025-12-01 Patch Stage, and one other 56 bugs within the Kernel and third-party closed-source parts, lined by the 2025-12-05 Patch Stage.
In what issues the latter, there are 4 critical-severity fixes for elevation-of-privilege flaws within the Kernel’s Pkvm and UOMMU subcomponents, and two essential fixes for Qualcomm-powered units (CVE-2025-47319 and CVE-2025-47372).
Extra details about closed-source fixes could be present in Qualcomm’s and MediaTek’s bulletins for the December 2025 security updates.
Moreover, Samsung revealed its security bulletin, together with ported fixes from the Google replace and vendor-specific fixes.
It is very important word that the updates cowl units operating Android 13 and later, however units on Android 10 and later could obtain some essential fixes through Google Play system updates.
Additionally, Play Shield can detect and block documented malware and assault chains, so customers of any Android model ought to hold the part updated and lively.
These on older Android variations ought to both transfer to a third-party distribution that often incorporates Google’s security fixes or swap to a more recent system mannequin for lively help.
Damaged IAM is not simply an IT drawback – the affect ripples throughout your entire enterprise.
This sensible information covers why conventional IAM practices fail to maintain up with fashionable calls for, examples of what “good” IAM seems like, and a easy guidelines for constructing a scalable technique.
